Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 363447 - <app-text/evince-2.32.0-r2: another dvi security problem
Summary: <app-text/evince-2.32.0-r2: another dvi security problem
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A2 [glsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2011-04-13 09:57 UTC by Pacho Ramos
Modified: 2011-11-20 18:17 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Pacho Ramos gentoo-dev 2011-04-13 09:57:00 UTC 
-r2 includes upstream:
http://git.gnome.org/browse/evince/commit/?h=gnome-2-32&id=9611cfcd6c2f39aafab10730c291efd736ab97e4

That is supposed to fix another security problem. -r2 also includes a patch to fix a crash and to be compatible with poppler-0.16... but looks to still work fine for me with stable poppler (it wouldn't require then its stabilization)

Reproducible: Always
Comment 1 Tim Sammut (RETIRED) gentoo-dev 2011-04-13 16:38:04 UTC 
(In reply to comment #0)
> -r2 includes upstream:
> http://git.gnome.org/browse/evince/commit/?h=gnome-2-32&id=9611cfcd6c2f39aafab10730c291efd736ab97e4
> 

Thanks again.

Arches, please test and mark stable:
=app-text/evince-2.32.0-r2
Target keywords : "alpha amd64 arm ia64 ppc ppc64 sparc x86"
Comment 2 Agostino Sarubbo gentoo-dev 2011-04-13 18:36:20 UTC 
works here
Comment 3 Brent Baude (RETIRED) gentoo-dev 2011-04-13 20:11:45 UTC 
ppc done
Comment 4 Paweł Hajdan, Jr. (RETIRED) gentoo-dev 2011-04-15 07:20:05 UTC 
x86 stable
Comment 5 Christoph Mende (RETIRED) gentoo-dev 2011-04-15 21:41:37 UTC 
amd64 stable
Comment 6 Alex Buell 2011-04-17 23:39:59 UTC 
Tested along with poppler 0.16.4 on SPARC, seems to display PDF documents OK, could stabilise.
Comment 7 Raúl Porcel (RETIRED) gentoo-dev 2011-04-23 17:46:50 UTC 
alpha/arm/ia64/sparc stable
Comment 8 Kacper Kowalik (Xarthisius) (RETIRED) gentoo-dev 2011-04-26 11:18:22 UTC 
ppc64 stable, last arch done
Comment 9 Tim Sammut (RETIRED) gentoo-dev 2011-04-26 13:56:53 UTC 
Thanks, folks. Added to existing GLSA request.
Comment 10 GLSAMaker/CVETool Bot gentoo-dev 2011-11-20 18:17:13 UTC 
This issue was resolved and addressed in
 GLSA 201111-10 at http://security.gentoo.org/glsa/glsa-201111-10.xml
by GLSA coordinator Alex Legler (a3li).